sha256 worked. (both for dgst and for req) If i understand correctly, ECDSA algorithm only needs hash as a defined length bitstring, so adapting ripemd in place of sha1 should have been easier than sha256 (because ripemd has the same length as sha1, sha256 is longer). Citējot *Dr. Stephen Henson <[email protected]> [1]*: > On Sat, Jul 16, 2011, [email protected] wrote: > > > > > openssl dgst -ripemd160 -sign ec5_ca.key shr.o.txt > > WARNING: can't open config file: /usr/local/ssl/openssl.cnf > > Error setting context > > 5664:error:100C508A:elliptic curve > routines:PKEY_EC_CTRL:invalid > > digest type:.c > > ryptoecec_pmeth.c:229: > > AFAIK there is no standard for using ECC with ripemd160. OpenSSL > supports SHA1 > and SHA2 algorithms with ECC. So if you used -sha256 it should > work. > > Steve. > -- > Dr Stephen N. Henson. OpenSSL project core developer. > Commercial tech support now available see: http://www.openssl.org > ______________________________________________________________________ > OpenSSL Project > http://www.openssl.org > User Support Mailing List > [email protected] > Automated List Manager > [email protected] -- Tavs bezmaksas pasts Inbox.lv
Links: ------ [1] mailto:[email protected]
